{"id":5790,"date":"2019-03-22T14:32:37","date_gmt":"2019-03-22T11:32:37","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=5790"},"modified":"2019-11-15T14:31:36","modified_gmt":"2019-11-15T11:31:36","slug":"mirai-enterprise","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/mirai-enterprise\/5790\/","title":{"rendered":"Mirai \u015eirketleri hedef al\u0131yor"},"content":{"rendered":"

Ge\u00e7ti\u011fimiz g\u00fcnlerde Mirai\u2019nin yeni bir versiyonu<\/a> ile ilgili bir haber g\u00f6rd\u00fck (Mirai, IoT cihazlar\u0131n\u0131 hedef alan ve kendi kendine \u00e7o\u011falabilen bir botnettir ve 2016 y\u0131l\u0131nda Dyn sunucular\u0131na yap\u0131lan<\/a> b\u00fcy\u00fck \u00e7apl\u0131 DDoS sald\u0131r\u0131lar\u0131n\u0131n da sorumlusudur). Analistlere g\u00f6re bu botnet, \u00e7ok daha geni\u015f bir yelpazedeki g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanan yaz\u0131l\u0131mlarla donat\u0131lm\u0131\u015ft\u0131r. Bu \u00f6zelli\u011fi botnet\u2019in, \u00e7ok daha tehlikeli olmas\u0131na ve daha h\u0131zl\u0131 yay\u0131lmas\u0131na yol a\u00e7maktad\u0131r. As\u0131l endi\u015fe verici olan ise yeni t\u00fcr\u00fcn, yaln\u0131zca eski kurbanlar\u0131, yani y\u00f6nlendiriciler, IP kameralar ve di\u011fer \u201cak\u0131ll\u0131\u201d nesneler, ile s\u0131n\u0131rl\u0131 kalmamas\u0131 ve kurumsal IoT cihazlar\u0131n\u0131 da hedef almas\u0131d\u0131r.<\/p>\n

Asl\u0131nda bu durum, \u00e7ok b\u00fcy\u00fck bir s\u00fcrpriz olmad\u0131. Kaynak kodu yak\u0131n zaman \u00f6nce s\u0131zd\u0131r\u0131lan Mirai k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131, \u015fu anda yeterli programlama becerilerine sahip her t\u00fcrl\u00fc sald\u0131rgan taraf\u0131ndan kullan\u0131labiliyor. Dolay\u0131s\u0131yla Mirai ad\u0131, Securelist\u2019in 4. \u00e7eyrek DDoS raporu<\/a>nda bir\u00e7ok yerde ge\u00e7iyor. En yeni IoT tehdit raporumuz<\/a>a g\u00f6re Mirai k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131n\u0131n varyasyonlar\u0131 da t\u00fcm IoT cihaz sald\u0131r\u0131lar\u0131n\u0131n %21\u2019inde kullan\u0131lm\u0131\u015f.<\/p>\n

Mirai\u2019nin kodu son derece esnek ve uyarlanabilirdir, bu nedenle hedef yelpazesini geni\u015fletmek i\u00e7in k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m\u0131, g\u00fcvenlik a\u00e7\u0131klar\u0131ndan yararlanan yeni yaz\u0131l\u0131mlarla donatmak olduk\u00e7a kolayd\u0131r. \u015eu anda ya\u015fanan da tam olarak budur. Y\u00f6nlendiriciler, eri\u015fim noktalar\u0131, ADSL modemleri ve a\u011f kameralar\u0131 gibi normal avlar\u0131na y\u00f6nelik yeni k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m setinin yan\u0131 s\u0131ra y\u00fcksek kapasiteli, kurumsal kablosuz denetleyicilere, dijital i\u015faret sistemlerine ve kablosuz sunum sistemlerine bula\u015fabilir.<\/p>\n

Palo Alto Networks analistlerine g\u00f6re<\/a> Mirai\u2019nin yeni potansiyel hedefleri aras\u0131nda a\u015fa\u011f\u0131dakiler bulunmaktad\u0131r:<\/p>\n